Add new batch of CVEs

This import required only one manual fixup to mark the 6.6-upstream-stable as N/A. Peer review taking just some random CVEs to review would be welcome.
author: Salvatore Bonaccorso <carnil@debian.org> 2024-02-29 07:50:43 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-02-29 07:53:25 +0100
commit: 78df14178f64ab8464e05f783ff8693946c3b7c5 (patch)
tree: d81c8569e9ad9f124de0aa9835c06f2cf97eafdc /active/CVE-2023-52480
parent: 96eb71c2764b6a2a7eebf2a2857b79f63ab11ab8 (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/active/CVE-2023-52480 b/active/CVE-2023-52480
new file mode 100644
index 00000000..affd7532
--- /dev/null
+++ b/active/CVE-2023-52480
@@ -0,0 +1,15 @@
+Description: ksmbd: fix race condition between session lookup and expire
+References:
+Notes:
+ carnil> First introducing commit could not be determined.
+Bugs:
+upstream: released (6.6-rc5) [53ff5cf89142b978b1a5ca8dc4d4425e6a09745f]
+6.7-upstream-stable: N/A "Fixed before branching point"
+6.6-upstream-stable: N/A "Fixed before branching point"
+6.1-upstream-stable: released (6.1.57) [a2ca5fd3dbcc665e1169044fa0c9e3eba779202b]
+5.10-upstream-stable: needed
+4.19-upstream-stable: needed
+sid: released (6.5.8-1)
+6.1-bookworm-security: released (6.1.64-1)
+5.10-bullseye-security: needed
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-02-29 07:50:43 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-02-29 07:53:25 +0100
commit	78df14178f64ab8464e05f783ff8693946c3b7c5 (patch)
tree	d81c8569e9ad9f124de0aa9835c06f2cf97eafdc /active/CVE-2023-52480
parent	96eb71c2764b6a2a7eebf2a2857b79f63ab11ab8 (diff)